CVE-2026-3726

Description

A vulnerability has been found in Tenda F453 1.0.0.3. This affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

PUBLISHED Reserved 2026-03-07 | Published 2026-03-08 | Updated 2026-03-08 | Assigner VulDB

Problem types

Stack-based Buffer Overflow

Memory Corruption

Product status

Timeline

Credits

LtzHust (VulDB User) reporter

References

vuldb.com/?id.349704 (VDB-349704 | Tenda F453 webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow) vdb-entry technical-description

vuldb.com/?ctiid.349704 (VDB-349704 | CTI Indicators (IOB, IOC, IOA)) signature permissions-required

vuldb.com/?submit.766931 (Submit #766931 | Tenda F453 v1.0.0.3 Stack-based Buffer Overflow) third-party-advisory

github.com/...ngzheng/vul_db/blob/main/F453/vul_85/README.md exploit

www.tenda.com.cn/ product

cve.org (CVE-2026-3726)

nvd.nist.gov (CVE-2026-3726)

Download JSON